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AMENDMENTS TO THE CLAIMS 

1-36. (Canceled) 

37. (Currently Amended) A method for authorizing a portable communication 
device to access a destination network, wherein the portable communication device has 
is configured to access to a home network through home network settings that are 
incompatible with the destination network, and wherein the portable communication 
device can access the destination network without altering the home network settings, 
comprising: 

receiving at a gateway device a network service request from a portable 
communication device, the network service request including an indication of a 
network address to be accessed, the network address residing on a destination 
network; 

determining if the portable communication device is entitled to access the 
network address based upon information contained in the network service 
request received by the gateway device, wherein the portable communication 
device remains configured for accessing a home network through home network 
settings that are incompatible with the destination network, and wherein no 
additional configuration software need be installed on the portable 
communication device to access the destination network and any other network; 

if it is determined that the portable communication device is not entitled to 
access the network address: 

storing the network address request; 

modifying, at the gateway device, the network address request and 
communicating the modified request to a redirection server; 

responding, at the redirection server, to the modified request with a 
browser redirect message that reassigns the modified request to a 
predetermined, redirected network address; 

receiving, at the gateway device, the browser redirect message and 
modifying it with -to indicate that t he stored original network address is the 
origin of the browser redirect message ; and 
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sending the modified browser redirect message to the computer, 
the modified browser redirect message being configured to redirect the 
computer to the redirected network address ; and 

allowing the portable communication device to access the network 
address if it is determined that the portable communication device is entitled to 
access the network address . 

38. (Previously Presented) The method of claim 37, wherein the redirection 
server is internal to the gateway device. 

39. (Previously Presented) The method of claim 37, wherein the redirection 
server is external to the gateway device. 
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40. (Currently Amended) A system for authorizing a portable communication 
device to access a destination network, wherein the portable communication device has 
is configured to access to a home network through home network settings that are 
incompatible with the destination network, and wherein the portable communication 
device can access the destination network without altering the home network settings, 
comprising: 

a gateway device configured to receive a service access request from a 
portable communication device, the service access request indicating a desired 
network address residing on a destination network, the gateway device further 
configured to: 

determine if the portable communication device is entitled to 
access the network address based upon information contained in the 
original service access request, wherein the portable communication 
device remains configured for accessing a home network through home 
network settings that are incompatible with the destination network, and 
wherein no additional configuration software need be installed on the 
portable communication device to access the destination network and any 
other network; 

store the network address request if it is determined that the 
portable communication device is not entitled to access the destination 
network; and 

modify the original network address request if it is determined that 
the portable communication device is not entitled to access the 
destination network; and 

a redirection server in communication with the gateway device configured 
to receive the modified service access request from the gateway device; and 
respond with a browser redirect message that reassigns the original service 
access request to a redirected address; 

the gateway device being configured to receive the browser redirect 
message and modify the browser redirect message with -to indicate that the 
stored original service access reques t is the origin of the browser redirect 
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message, before forwarding the browser redirect message to the portable 
communication device, wherein the browser redirect message is configured to 
redirect the portable communication device to the redirected address. 

41. (Previously Presented) The system of claim 40, further comprising a 
user profile database in communication with the gateway device that includes stored 
user-access information. 

42. (Previously Presented) The system of claim 40, further comprising an 
Authentication, Authorization and Accounting (AAA) server in communication with the 
gateway device and user profile database, the AAA server determines if the portable 
communication device is entitled to access the original destination address requests 
based upon the user-access information stored within the user profile database. 

43. (Previously Presented) The system of claim 40, wherein the redirection 
server is located within the gateway device. 

44. (Previously Presented) The method of Claim 37, wherein the indication 
of the network address comprises a hypertext transfer protocol (HTTP) request for a 
web page. 

45. (Previously Presented) The method of Claim 37, wherein the indication 
of the network address comprises a destination address. 

46. (Previously Presented) The method of Claim 45, wherein the destination 
address comprises one or more of a destination port, Internet address TCP port and a 
network. 

47. (Previously Presented) The system of Claim 40, wherein the indicated 
desired network address comprises a hypertext transfer protocol (HTTP) request for a 
web page. 

48. (Previously Presented) The system of Claim 40, wherein the indication 
of a network address comprises a destination address. 

49. (Previously Presented) The system of Claim 48, wherein the destination 
address comprises one or more of a destination port, Internet address TCP port and a 
network. 

50. (Previously Presented) The method of Claim 37, wherein the information 
contained in the network service request comprises a MAC address, and wherein 
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determining if the portable communication device is entitled to access the network 
address comprises comparing the MAC address to a database of authorized MAC 
addresses. 

51 . (Previously Presented) The method of Claim 37, wherein the information 
contained in the network service request is indicative of a location of the portable 
communication device, and wherein determining if the portable communication device 
is entitled to access the network address is based upon the indicated location of the 
portable communication device. 

52. (Previously Presented) The method of Claim 37, further comprising: 
receiving, at the gateway device, a second request from the portable 

communication device, the second request indicating a desired second network 
address; and 

determining that the portable communication device is entitled to access 
the network address based at least upon comparing a MAC address included in 
the second request with an authorization database. 

53. (Previously Presented) The system of Claim 40, wherein the information 
contained in the original service access request comprises a MAC address, and 
wherein the gateway device is configured to determine if the portable communication 
device is entitled to access the network address, at least in part by comparing the MAC 
address to a database of authorized MAC addresses. 

54. (Previously Presented) The system of Claim 40, wherein the information 
contained in the original service access request is indicative of a location of the portable 
communication device, and wherein the gateway device is configured to determine if 
the portable communication device is entitled to access the network address, based at 
least in part on the indicated location of the portable communication device. 

55. (Previously Presented) The system of Claim 40, wherein the gateway 
device is further configured to: 

receive, at the gateway device, a second request from the portable 
communication device, the second request indicating a desired second network 
address; and 
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determine that the portable communication device is entitled to access the 
second network address based at least upon comparing a MAC address 
included in the second request with an authorization database. 
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56. (Currently Amended) A method of authorizing a portable communication 
device to access a network resource, the method being performed at a network 
management system in communication with the portable communication device via a 
network, the method comprising: 

receiving, from a portable communication device via a network, a request 
to access a network resource, the request being configured with network settings 
that do not correspond to the network; 

determining, on a processor, whether the portable communication device 
is authorized to access the requested network resource, the determination being 
based at least in part on comparing an attribute included in the request to a user 
profile database; and 

redirecting, upon determining that the portable communication device is 
not authorized to access the requested network resource, the portable network 
device to an authentication system, by performing a method comprising: 
storing the request to access the network resource; 
communicating a modified request to a redirection server, the 
modified request being based upon the request to access the network 
resource; 

receiving, from the redirection server, a browser redirect message 
comprising a resource locator that identifies the authentication system, the 
browser redirect message configured to cause the portable 
communication device to be redirected to the authentication system; and 

sending, to the portable communication device, a modified browser 
redirect message based upon the browser redirect message, the modified 
browser redirect message configured to b e r e spons i v e to th e r e qu e st to 
acc e ss th e n e twork resourco indicate that it was sent bv the network 
resource ; 

whereby the portable communication device is enabled, by being 
redirected to the authentication system, to submit authentication-related 
information so that the portable communication system may be authorized to 
access the requested network resource. 

-8- 



Application No.: 09/458602 

Filing Date: December 8, 1999 

57. (Previously Presented) The method of Claim 56, further comprising 
updating the user profile database upon determining that the portable communication 
device is entitled to access the requested network resource. 

58. (Previously Presented) The method of Claim 56, further comprising 
maintaining in the user profile database a historical log of the portable communication 
device's access to the destination network. 

59. (Previously Presented) The method of Claim 56, wherein the request is 
an HTTP request. 

60. (Previously Presented) The method of Claim 56, wherein determining 
whether to authorize the portable communication device to access the requested 
network resource further comprises denying the portable communication device access 
where the user profile database indicates that the portable communication device may 
not access the destination network. 

61. (Previously Presented) The method of Claim 56, wherein the attribute 
included in the request is one of a port, circuit ID, VLAN ID or MAC address. 

62. (Previously Presented) The method of Claim 56, further comprising: 
receiving, from the portable communication device, a second request to 

access a second network resource; and 

determining that the portable communication device is authorized to 
access the second network resource, based at least upon a MAC address 
included in the second request. 
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63. (Currently Amended) A network management system configured to 
manage authorization of a portable communication device to access a network 
resource, the system comprising: 

a network communications interface configured to receive, from a portable 
communication device via a network, a request to access a network resource, 
the request comprising a resource locator that identifies the network resource, 
the request being configured with network settings that do not correspond to the 
network; and 

a processor configured to determine whether the portable communication 
device is authorized to access the requested network resource, the 
determination being based at least in part on comparing an attribute included in 
the request to a user profile database; 

the processor further configured to redirect, upon determining that the 
portable communication device is not authorized to access the requested 
network resource, the portable network device to an authentication system, by 
performing a method comprising: 

storing the request to access the network resource; 
communicating a modified request to a redirection server, the 

modified request being based upon the request to access the network 

resource; 

receiving, from the redirection server, a browser redirect message 
comprising a second resource locator that identifies the authentication 
system, the browser redirect message configured to cause the portable 
communication device to be redirected to the authentication system; and 

sending, to the portable communication device, a modified browser 
redirect message based upon the browser redirect message, the modified 
browser redirect message configur e d to b o responsiv e to th o r o qu o st to 
acc e ss indicating it originated from the network resource; 
whereby the portable communication device is enabled, by being 
redirected to the authentication system, to submit authentication-related 
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information so that the portable communication system may be authorized to 
access the requested network resource. 

64. (Previously Presented) The network management system of Claim 63, 
wherein the processor is further configured to maintain, in the user profile database, a 
historical log of the portable communication device's access to the destination network. 

65. (Previously Presented) The network management system of Claim 63, 
wherein the request is an HTTP request. 

66. (Previously Presented) The network management system of Claim 63, 
wherein determining whether to authorize the portable communication device to access 
the requested network resource further comprises denying the portable communication 
device access where the user profile database indicates that the portable 
communication device may not access the destination network. 

67. (Previously Presented) The network management system of Claim 63, 
wherein the attribute included in the request is one of a port, circuit ID, VLAN ID or MAC 
address. 

68. (Previously Presented) The network management system of Claim 63, 
wherein the network interface is further configured to receive, from the portable 
communication device, a second request to access a second network resource, and 
wherein the processor is further configured to determine that the portable 
communication device is authorized to access the second network resource, based at 
least upon a MAC address included in the second request. 

69. (New) The system of Claim 63, wherein the user profile database further 
stores information relating to an authorized time period associated with the portable 
communication device, and wherein the determination of whether the portable 
communication device is authorized to access the requested network resource is further 
based on an amount of time that has elapsed in relation to the authorized time period 
stored in the user profile database. 

70. (New) The system of Claim 63, wherein the attribute included in the 
request comprises a link-layer header of a network packet, and wherein the 
determination of whether the portable communication device is authorized to access 
the requested network resource is based both on the link-layer header of the network 
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packet and on identification information provided automatically by a browser of the 
portable communication device. 

71. (New) The method of Claim 37, wherein modifying comprises changing 
attributes within the network address request. 

72. (New) The system of Claim 40, wherein the gateway device is further 
configured to modify the original network address request by changing an attribute 
within the original network address request. 

73. (New) The method of Claim 56, wherein the modified request comprises a 
change to one or more attributes within the request. 

74 (New) The method of Claim 73, wherein the request is a network packet. 

75. (New) The method of Claim 74, wherein the one or more attributes within 
the request are one or more of a source address, a checksum, and an application 
specific parameter. 

76. (New) The system of Claim 63, wherein the modified request comprises a 
change to one or more attributes within the request. 

77 (New) The system of Claim 77, wherein the request is a network packet. 

78. (New) The system of Claim 78, wherein the one or more attributes within 
the request are one or more of a source address, a checksum, and an application 
specific parameter. 
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